Ransomware Group:  
Safepay



Sponsored by Hudson RockUse Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business


Sites | TTPs | Ransom Note(s) | Activity | Worldmap | Victims (34)


Sites

Title Available Last Visit FQDN Screenshot
SAFEPAY 🟢 2024-12-07 06:23:56.882928 nz4z6ruzcekriti5cjjiiylzvrmysyqwibxztk6voem4trtx7gstpjid.onion 📸
SAFEPAY 🔴 2024-11-22 15:33:58.630977 cqkrkmmivhakl3fwgxscurduu3znmroablt7jskxszkctixyseij5gad.onion N/A
None 🔴 2021-01-01 00:00:00.000000 nj5qix45sxnl4h4og6hcgwengg2oqloj3c2rhc6dpwiofx3jbivcs6qd.onion N/A

TTPs

Ransom Note(s)

Activity over time

Worldmap

34 Victims

US flag

casaimports.com 

Company logo
Ransomware Group:

Discovery Date: 2024-12-06 03:29

Revenue $5 Million

Victim:   |  Group: 
CA flag

ktpartners.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-12-06 03:27

Revenue $5 Million

Victim:   |  Group: 
US flag

elwood.k12.in.us 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 08:13

Sector: Education
Revenue $5 Million

Victim:   |  Group: 
US flag

scottelec.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 08:13

Sector: Construction
Revenue $19.6 Million

Victim:   |  Group: 
BM flag

helixbermuda.bm 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 08:11

Revenue $5 Million

Victim:   |  Group: 
AU flag

australianhearthealth.org.au 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 08:09

Sector: Healthcare
Revenue $7 Million

Victim:   |  Group: 
US flag

midlandtool.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-28 08:07

Revenue $126 Million

Victim:   |  Group: 
US flag

mdmcusa.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-26 00:57
Estimated Attack Date: 2024-11-08

Sector: Construction
Revenue $5 Million

Victim:   |  Group: 
US flag

titlenine.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-24 19:11
Estimated Attack Date: 2024-11-02

Revenue $60.8 Million

Victim:   |  Group: 
GB flag

www.microlise.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-20 23:31

Revenue $91.4 Million

Victim:   |  Group: 
AU flag

snowbrand.com.au 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:48
Estimated Attack Date: 2024-09-26

Revenue $9.5 Million

Victim:   |  Group: 
US flag

piburners.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:46
Estimated Attack Date: 2024-10-04

ZIP-156GB - Revenue $5 Million

Victim:   |  Group: 
NZ flag

tritonsourcing.co.nz 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:44
Estimated Attack Date: 2024-10-08

ZIP-10GB - Revenue $5 Million

Victim:   |  Group: 
IT flag

onnicar.it 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:42

ZIP-127GB - Revenue $23.2 Million

Victim:   |  Group: 
CA flag

kingswoodpark.ca 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:40
Estimated Attack Date: 2024-10-10

ZIP-55GB

Victim:   |  Group: 
US flag

incocommercial.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:38
Estimated Attack Date: 2024-10-17

Sector: Construction
ZIP-210GB - Revenue $5 Million

Victim:   |  Group: 
BE flag

euromedix.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:34
Estimated Attack Date: 2024-10-14

Sector: Healthcare
ZIP-105GB - Revenue $6.2 Million

Victim:   |  Group: 
BE flag

BusinessTraining.be 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:32

Sector: Education
ZIP-80GB - Revenue $16.3 Million

Victim:   |  Group: 
US flag

ccseniorservices 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:30

Sector: Healthcare
ZIP-50GB

Group: 
DE flag

ib-spieth.de 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:30
Estimated Attack Date: 2024-10-21

Sector: Construction
ZIP-415B - Revenue $5 Million

Victim:   |  Group: 
US flag

Safex.us 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:28

ZIP-70GB - Revenue $5,4 Million

Victim:   |  Group: 
US flag

millerservicecompany.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:26
Estimated Attack Date: 2024-10-25

Sector: Construction
ZIP-70GB

Victim:   |  Group: 
CA flag

mcauslan.com 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:24
Estimated Attack Date: 2024-10-27

ZIP-50GB - Revenue $16.1 Million

Victim:   |  Group: 
BB flag

stats.gov.bb 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:21
Estimated Attack Date: 2024-10-29

ZIP-330GB - Revenue $14.5 Million

Victim:   |  Group: 
US flag

smartdimensions 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-10-29

Sector: Not Found
ZIP-18GB - Revenue $<5 Million

Victim:   |  Group: 
US flag

westwood 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19

Sector: Not Found
ZIP-50GB - Revenue $8.1 Million

Victim:   |  Group: 
US flag

threadfxinc/bluedogmerch 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-10-18

ZIP-70GB - Revenue $10.7 Million

Victim:   |  Group: 
CH flag

Pronatec 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-10-06

Revenue $5 Million

Victim:   |  Group: 
IL flag

Gilazo 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-25

Sector: Not Found
Revenue $5 Million

Victim:   |  Group: 
AR flag

OMINT 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-27

Sector: Healthcare
Revenue $540.7 Million

Victim:   |  Group: 
JP flag

NKCE Japan 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-26

Sector: Not Found
[AI generated] NKCE Japan is a company known for its expertise in engineering and manufacturing, specializing in precision components and advanced technological solutions. It serves various industries, providing high-quality products and innovative services. NKCE Japan is committed to excellence and customer satisfaction, leveraging cutting-edge technology and skilled craftsmanship to meet diverse client needs.

Victim:   |  Group: 
GB flag

Richmond Hill Primary Academy 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-20

Sector: Education
[AI generated] Richmond Hill Primary Academy is an educational institution focused on providing a nurturing and dynamic learning environment for children. It emphasizes academic excellence, personal growth, and community engagement. The academy offers a broad curriculum designed to foster creativity, critical thinking, and a love for learning, supported by a dedicated team of educators and staff.

Victim:   |  Group: 
AR flag

Active Cosmetic 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-09-17

Revenue $26.7 Million

Victim:   |  Group: 
IE flag

O'mara 

Company logo
Ransomware Group:

Discovery Date: 2024-11-19 22:19
Estimated Attack Date: 2024-08-26

Sector: Not Found
Revenue $5.7 Million

Victim:   |  Group: